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(54) METHOD OF TRANSFERRING AND COPYING, AND ENCIPHERING AND DECIPHERING 
DATA 

(57)Abstract: 

PROBLEM TO BE SOLVED: To enhance processing 
stability and a security function. 
SOLUTION: This method is provided with a step for 
obtaining a control function for controlling a device 
driver such as a hard disk, a step for opening an 
encipherment file using the control function when 
detecting that the file within a cipher area is transferred 
or copied to a noncipher area, a step for reading the 
opened encipherment file using the control function to 
generate an ordinary sentence file by deciphering, a 
step for opening the file in a transferred site or copied 
site using the control function, a step for writing the 
ordinary sentence file in the transferred site or copied 
site using the control function, a step for closing the 
ordinary sentence file in the transferred site or copied 
site using the control function, and a step for deleting 
the encipherment file within the cipher area using the 
control function in the case of the transfer. 
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JPO and INPIT are not responsible for any 
damages caused by the use of this translation. 

1 This document has been translated by computer. So the translation may not reflect the 
original precisely. 

2.**** shows the word which can not be translated. 
3. In the drawings, any words are not translated. 



CLAIMS 

[Claim(s)] 

[Claim 1]How to move or reproduce it to non-code fields other than said folder after decoding 
an enciphered file which set a specific folder of a computer system characterized by 
comprising the following to a code field, and was stored in this code field. 
A step which acquires a control function for controlling device drivers, such as a hard disk. 
A step which opens the enciphered file concerned using said control function if an enciphered 
file in a code field detects that movement or a duplicate to a non-code field is performed. 
A step which reads an opened enciphered file using said control function, decodes this, and 
generates a plaintext file. 

A step which opens a file in a movement destination or a copying destination using said control 
function, A step which writes said plaintext file in a movement destination or a copying 
destination using said control function, a step which closes said plaintext file of a movement 
destination or a copying destination using said control function, and a step which deletes said 
enciphered file in a code field using said control function in movement. 

[Claim 2]How to move or reproduce a plaintext file characterized by comprising the following 
which set a specific folder of a computer system to a code field, and was stored in non-code 
fields other than said folder to said code field after enciphering. 

A step which acquires a control function for controlling device drivers, such as a hard disk. 
A step which opens the plaintext file concerned using said control function if a plaintext file in a 
non-code field detects that movement or a duplicate to a code field is performed. 
A step which reads an opened plaintext file using said control function, enciphers this, and 
generates an enciphered file. 

A step which opens a file in a movement destination or a copying destination using said control 
function, A step which writes said enciphered file in a movement destination or a copying 
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destination using said control function, a step which closes said enciphered file of a movement 
destination or a copying destination using said control function, and a step which deletes said 
plaintext file in a non-code field using said control function in movement. 

[Claim 3]The 1st step that moves data in the folder concerned by a method according to claim 
1 or 2 one by one when said object which moves is a folder, The 2nd step that moves data in 
the subfolder concerned by a method according to claim 1 or 2 one by one in advance of other 
data in a folder of a higher rank from this subfolder when said data is a subfolder, Movement of 
data performing until it will return to the top folder of a moved object and all data in a folder of a 
moved object will move said 1st step and the 2nd step, if data which should repeat said 2nd 
step and should move is exhausted, a duplicating method and encryption, a decoding method. 
[Claim 4]Movement of data characterized by comprising the following, a duplicating method 
and encryption, a decoding method. 

A step which data is enciphered in a computer system, or is how to decode enciphered data, 
and demands an input of an identification signal from a user in order to set up a user a priori. 
A step which generates a message digest of an inputted identification signal. 
A step which divides a generated message digest into multiple-data-stream. 
A step which generates a message digest of an identification signal to a user in order to have a 
step which memorizes at least one of said the divided data rows as authentication data of the 
user concerned and to give encryption or decoding to necessary data, A step which divides a 
generated message digest into multiple-data-stream, A step which extracts a thing equivalent 
to said authentication data from said divided data row, A step in comparison with said 
authentication data which memorized this beforehand, and a step which carries out encryption 
or decoding by using at least one of said data rows of data rows other than said authentication 
data as an encryption key when authentication data is in agreement. 



[Translation done.] 
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* NOTICES * 

JPO and INPIT are not responsible for any 
damages caused by the use of this translation. 

1 This document has been translated by computer. So the translation may not reflect the 
original precisely. 

2.**** shows the word which can not be translated. 
3. In the drawings, any words are not translated. 



DETAILED DESCRIPTION 

[Detailed Description of the Invention] 
[0001] 

[Field of the lnvention]This invention relates to the method of moving an electronic file, 
enciphering or decoding an electronic file in a personal computer system etc. 
[0002] 

[Description of the Prior Art]ln recent years, the encryption software which can encipher easily $ 

electronic files created with the personal computer etc., such as image data and text data, is 

sold. For example, if software is started, a predetermined password is entered first, a user is 

authorized and the encryption software of the type which specifies a predetermined folder as 

an enciphering area next is known. If it is going to save electronic files, such as text data 

created with predetermined application when this software was stationed permanently on the 

computer, to said code field, encryption software perceives this, enciphers said electronic file, 

and is saved. Since said electronic file will decode and will pass processing to predetermined 

applications (for example, word-processing software etc.) if the electronic file in a code field is 

double-clicked with a mouse, On a screen, an electronic file is displayed as a usual text file. 

[0003]On the other hand, in the computer which sets Windows 95 of Microsoft Corp., etc. to 

OS (operation system), Explorer is preinstalled as a tool for file management, and movement 

and a copy of a file can be performed easily. However, when the electronic file enciphered 

using this Explorer is moved to a non-code field from a code field, a file is not automatically 

decoded only by a pathname (preservation destination folder name) being changed as for said 

electronic file. Even if it moves the usual electronic file to a code field from a non-code field, it 

is not automatically enciphered only by the pathname of a file being changed too. Then, 

encryption software with the function which perceives operation of file migration, and enciphers 

or decodes an electronic file automatically is proposed. 

[0004] Drawing 13 is a block diagram showing briefly the state where the conventional 
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encryption software was installed in a personal computer system. In drawing 13 , while OS 
(operation system) 2 which has the file system 1 is installed in the personal computer, the hard 
disk driver 4 for controlling the hard disk 3 is installed. The encryption software 5 can access 
now the predetermined electronic file in the hard disk 3 via the operation system 2 and the 
hard disk driver 4. Here, some encryption software 5 intervenes between the operation system 
2 and the hard disk driver 4. A graphic display is omitted in order to explain simply, although it 
has a mouse, a keyboard, CRT, etc. as a personal computer system. 
[0005] Drawing 14 is a flow chart figure showing the example of the conventional encryption 
software shown in drawing 13 of operation. The example of the conventional encryption 
software of operation is explained below, using drawing 14 . First, after encryption software has 
started, a user does drag-and-drop operation of the mouse, looking at display screens, such as 
CRT, and moves a predetermined file (the usual electronic file which has not been enciphered) 
into the predetermined folder specified as a code field. The operating system 2 detects said file 
migration operation, and a move demand is sent out to the file system 1 so that it may move 
into the folder (henceforth a movement destination folder) which specified the predetermined 
file in a predetermined folder (henceforth a source folder) as a code field, The file system 1 
sends this out to the encryption software 5. 

[0006]Here, the encryption software 5 is monitoring continuously the information included in 
said move demand. If said move demand directs movement into [ out of a non-code field ] a 
code field, or movement into [ out of a code field ] a non-code field, The encryption software 5 
does not hand over this move demand to the hard disk driver 4, Cipher processing which 
returned and showed the completion response of a move which shows that movement was 
completed continuously to the operation system 2 by drawing 12 via the file system 1 is 
performed via the operation system 2. This is because the operation system 2 will receive the 
next processing if the completion response of a move is not returned to said move demand. 
Therefore, the encryption software 5 returns the completion response of a move to the 
operation system 5, and he is trying to direct processing of drawing 12 to the operation system 
5 separately to said move demand. 

[0007]Then, it is directed to the OPE ration system 2 (henceforth OS) that the encryption 
software 5 reads the attribute (information, including the path of a move original file, a date, 
etc.) of a move original file from the information first included in said move demand as shown 
in drawing 12 . And a move original file is directed to OS openly (it opens) like based on the 
attribute of the move original file which came to hand, and it is directed to OS that a move 
original file reads from the hard disk 3. Next, the encryption software 5 enciphers the move 
original file read from the hard disk 3, and it directs to write this in as a movement destination 
file in the hard disk 3 to OS. After writing is completed, the encryption software 5 points to the 
open move original file to OS at Mr. Closing (it closes), and directs the movement destination 
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file which was further open to closing (it closes) Mr. OS. 

[0008]lt is directed to OS that the encryption software 5 corrects a file date by the file attribute 
of the movement destination saved at the hard disk 3. When a move original file is enciphered 
and it writes in a movement destination file, this is performed in order to prevent the date of a 
file from being updated. And the encryption software 5 takes out directions to OS so that a 
move original file may be deleted, and a move original file is eventually deleted from the hard 
disk 3. Thus, since a move original file is reproduced by the movement destination file after 
being enciphered automatically, and also a move original file is deleted by a series of 
processings shown in drawing 12 , it means that it was processed as a file was enciphered and 
it was moving. Also when a file is moved to a non-code field from a code field, as it is shown in 
drawing 12 , a move original file is processed as it is decoded automatically and is moving. 
Thus, except [ all ] the processing enciphered / decoded, the encryption software 5 gives 
directions to OS and is performing processing. 
[0009] 

[Problem(s) to be Solved by the InventionJHowever, there are the following problems in the 
disposal method of the conventional encryption software. That is, since OS will generate a 
move demand if a user performs operation (drag-and-drop operation) of file migration for a 
predetermined file from a non-code field to a code field using a mouse, encryption software 
detected this and he is trying to have returned the completion response of a move to OS. 
However, unless a series of processings shown by drawing 12 in practice continue and these 
processings are completed, movement of a file is not completed for operation. 
[0010]Therefore, when it was satisfactory since most processings of after-return drawing 12 
were processed in an instant in the completion response of a move when the file which moves 
was one, but the folder which stored two or more files is specified as an object which moves, 
processing of drawing 12 will take time. Therefore, although a user is during processing of 
drawing 12 , he will mistake with what processing finished and will do other work. As a result, 
although a user is during processing of drawing 12 , the danger of performing operating on a 
screen the file by which it was indicated by updating with a mouse, and making it moving one 
of the files of a movement destination to other places accidentally by said completion response 
of a move will produce him. When such an operation mistake is carried out, in spite of having 
convinced the user that the file moved to the movement destination correctly, the phenomenon 
of remaining without being deleted by somewhere in a hard disk without a file actually moving 
to a movement destination correctly will generate him. 

[001 1 ]lt is also considered that a user will mistake with what processing finished during 
processing of drawing 12 , and will leave a seat. At this time, it is easy to generate the spare 
time of acquiring the move original file before the 3rd person does the direct control of a user's 
personal computer and enciphers, or invading into a user's personal computer via a network, 
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and acquiring the move original file under encryption processing unjustly. 
[0012]This invention was made in order to solve the above-mentioned problem, and it is ****. 
The purpose is providing the data movement and the duplicating method of the encryption 
software which can prevent the 3rd person acquiring the data under cipher processing unjustly 
while preventing the phenomenon generated by a mouse operation mistake during the file 
migration processing accompanied by /decoding. 

[0013] 

[Means for Solving the Problem]ln order to solve the above-mentioned purpose, data 
movement of an electronic file concerning this invention, a duplicating method and encryption, 
and the invention of a decoding method according to claim 1 , An enciphered file which set a 
specific folder of a computer system to a code field, and was stored in this code field, A step 
which acquires a control function for being the method of moving or reproducing to non-code 
fields other than said folder after decoding, and controlling device drivers, such as a hard disk, 
A step which opens the enciphered file concerned using said control function if an enciphered 
file in a code field detects that movement or a duplicate to a non-code field is performed, A 
step which reads an opened enciphered file using said control function, decodes this, and 
generates a plaintext file, A step which opens a file in a movement destination or a copying 
destination using said control function, A step which writes said plaintext file in a movement 
destination or a copying destination using said control function, It has a step which closes said 
plaintext file of a movement destination or a copying destination using said control function, 
and a step which deletes said enciphered file in a code field using said control function in 
movement. 

[0014]Data movement of an electronic file concerning this invention, a duplicating method and 
encryption, and the invention of a decoding method according to claim 2, A plaintext file which 
set a specific folder of a computer system to a code field, and was stored in non-code fields 
other than said folder, A step which acquires a control function for being the method of moving 
or reproducing to said code field after enciphering, and controlling device drivers, such as a 
hard disk, A step which opens the plaintext file concerned using said control function if a 
plaintext file in a non-code field detects that movement or a duplicate to a code field is 
performed, A step which reads an opened plaintext file using said control function, enciphers 
this, and generates an enciphered file, A step which opens a file in a movement destination or 
a copying destination using said control function, A step which writes said enciphered file in a 
movement destination or a copying destination using said control function, It has a step which 
closes said enciphered file of a movement destination or a copying destination using said 
control function, and a step which deletes said plaintext file in a non-code field using said 
control function in movement. 
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[0015]The invention of a data movement method of an electronic file concerning this invention, 
and a duplicating method according to claim 3, The 1st step that moves data in the folder 
concerned by a method according to claim 1 or 2 one by one when said object which moves is 
a folder in claim 1 or claim 2, The 2nd step that moves data in the subfolder concerned by a 
method according to claim 1 or 2 one by one in advance of other data in a folder of a higher 
rank from this subfolder when said data is a subfolder, It performs until it will return to the top 
folder of a moved object and all data in a folder of a moved object will move said 1st step and 
the 2nd step, if data which should repeat said 2nd step and should move is exhausted. 
[0016]The invention of a data movement method of an electronic file concerning this invention, 
and a duplicating method according to claim 4, A step which enciphers data in a computer 
system, or demands an input of an identification signal from a user in order to be the method of 
decoding enciphered data and to set up a user a priori, A step which generates a message 
digest of an inputted identification signal, A step which divides a generated message digest 
into multiple-data-stream, A step which generates a message digest of an identification signal 
to a user in order to have a step which memorizes at least one of said the divided data rows as 
authentication data of the user concerned and to give encryption or decoding to necessary 
data, A step which divides a generated message digest into multiple-data-stream, A step which 
extracts a thing equivalent to said authentication data from said divided data row, It has a step 
in comparison with said authentication data which memorized this beforehand, and a step 
which carries out encryption or decoding by using at least one of said data rows of data rows 
other than said authentication data as an encryption key when authentication data is in 
agreement. 
[0017] 

[Embodiment of the lnvention]Based on the example of an embodiment illustrated below, this 
invention is explained in detail. Drawing 1 is a block diagram showing the situation where the 
encryption software of this invention was installed in the personal computer system. In drawing 
1_, while OS(operation system) 2 which has the file system 1 is installed in the personal 
computer system, the hard disk driver 4 for controlling the hard disk 3 is installed. The 
encryption software 5 mainly intervenes between the file system 1 and the hard disk driver 4, 
and can access the predetermined electronic file in the hard disk 3, and it gives predetermined 
directions to the operation system 2. A graphic display is omitted in order to explain simply, 
although it has a mouse, a keyboard, CRT, etc. in addition to this as a personal computer 
system. 

[0018]The operation is explained about the encryption software shown in drawing 1 below. 
First, after encryption software has started, a user does drag-and-drop operation of the mouse, 
looking at display screens, such as CRT, and moves a predetermined plaintext file (the usual 
electronic file which has not been enciphered) into the predetermined folder specified as a 



http://ww4.ipdl.inpi^ 4/10/2008 



JP,2002-175210,A [DETAILED DESCRIPTION] 



Page 6 of 13 



code field. The operating system 2 detects said file migration operation, and a move demand is 
sent out to the file system 1 so that it may move into the folder (henceforth a movement 
destination folder) which specified the predetermined file in a predetermined folder (henceforth 
a source folder) as a code field, The file system 1 sends this out to the encryption software 5. 
[0019]Next, if a move demand is received from the file system 1, the encryption software 5 is 
directed to the hard disk driver 4 (hard disk 3) so that sequential execution of the STEP1- 
STEP10 which were shown in drawing 2 below may be carried out based on the information 
included in a move demand. That is, it is directed that the encryption software 5 reads the 
attribute (information, including the path of a move original file, a date, etc.) of a move original 
file from the information included in said move demand first (STEP1). And a movement 
destination file is directed for a move original file openly (it opens) like with opening (it opens) 
based on the attribute of the move original file which came to hand (STEP 2 and 3). It is 
directed to the hard disk driver 4 that the encryption software 5 reads a move original file from 
the hard disk 3 (STEP4). Next, the encryption software 5 enciphers the move original file read 
from the hard disk 3 (STEP5), and it directs to write this in as a movement destination file in 
the hard disk 3 to the hard disk driver 4 (STEP6). After the writing to the hard disk 3 is 
completed, the encryption software 5 directs the open move original file and movement 
destination file to Mr. Closing (it closes) at the hard disk driver 4, respectively (STEP 7 and 8). 
[0020]lt is directed to the hard disk driver 4 that the encryption software 5 corrects a file date 
by the file attribute of the movement destination saved at the hard disk 3 (STEP9). When a 
move original file is enciphered and it writes in a movement destination file, this is performed in 
order to prevent the date of a file from being updated. And the encryption software 5 takes out 
directions to the hard disk driver 4 so that a move original file may be deleted (STEP10), and a 
move original file is eventually deleted from the hard disk 3. 

[0021]Thus, since a move original file is reproduced by the movement destination file after 
being enciphered automatically, and also a move original file is deleted by a series of 
processings of STEP 1-10 shown in drawing 2, it means that it was processed as a file was 
enciphered and it was moving. When moving a file to a non-code field from a code field, a 
move original file is similarly processed as it is decoded automatically and is moving. And the 
encryption software 5 returns the completion response of a move to OS (file system 1), after all 
the processings are completed. 

[0022]Here, except [ all ] encryption / processing to decode of STEP5, the encryption software 
5 gives directions to the hard disk driver 4, and is performing processing. However, in order to 
carry out direct access to the hard disk driver 4, without the encryption software 5 passing OS 
or the file system 1 and to enable it to perform STEP 1-10, the encryption software 5 must 
acquire the control function to the hard disk driver 4 beforehand. The procedure which 
acquires a control function required in order to perform each STEP of drawing 2 hereafter is 
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explained. 

[0023]First, a procedure required in order that drawing 2 may perform STEP1 is explained. 
Drawing 3 shows the procedure for reading the attribute of a move original file. The fictitious 
file (here, it is considered as file name'X') which gave the suitable name a priori is set to the 
encryption software 5. The encryption software 5 is directed to the hard disk driver 4 (hard disk 
3) via OS and the file system 1 so that the attribute of a fictitious file may be read. 
[0024]Here, since said fictitious file does not actually exist on the hard disk 3, the processing 
which reads an attribute serves as an error and processing is ended. However, since the 
control function for performing read-out and grant of an attribute from the file system 1 to the 
hard disk driver 4 will be sent out if processing which reads this attribute is performed even 
once, this is acquired and held with the encryption software 5. Henceforth, it can direct now 
from the encryption software 5 with a control function to the hard disk driver 4 directly, without 
passing the file system 1 . Even if the thing of the same file name as said fictitious file exists on 
a hard disk also by chance, it does not change to a control function being sent out only by 
read-out of an attribute being successful. Therefore, the control function which performs read- 
out and grant of the attribute of a moved material in the procedure explained above is 
acquirable. 

[0025]Next, the procedure which acquires the control function required in order to perform 
STEP2 of drawing 2 which opens a file is explained. Drawing 4 shows the procedure which 
acquires the control function which carries out file opening. The fictitious file (here, it is 
considered as file name'X') which gave the suitable name a priori is set to the encryption 
software 5. First, the encryption software 5 accesses the hard disk driver 4 (hard disk 3) via 
OS and the file system 1, specifies the route of a drive, and looks for the element (a file or a 
folder) in it. And when a file does not find one, said fictitious file is directed to method OS of 
opening (it opens). When said fictitious file is read and it opens by dedicated mode at this time, 
since a fictitious file is no longer created and it does not consume a memory, it is preferred. 
[0026]Here, since said fictitious file does not actually exist on the hard disk 3, the processing 
which opens a file serves as an error and processing is ended. However, if processing which 
opens this file is performed even once, the control function for opening a file from a file system 
to the hard disk driver 4 will be sent out. This is acquired and held with the encryption software 
5. Henceforth, it can direct now from the encryption software 5 with a control function to the 
hard disk driver 4 directly, without passing the file system 1. 

[0027]As a result of specifying the route of a drive and looking for the element (a file and a 
folder) in it, when a suitable folder or file is found, It directs to consider that the file which it 
pointed to OS so that it might consider that the found folder is a file and it might be opened, or 
was found is a folder, and to open the fictitious file X (file which does not exist actually) in the 
folder to OS. In any case, if it does in this way, a processing result will serve as an error, but 
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the control function for opening a file from the file system 1 to the hard disk driver 4 similarly is 
sent out 

[0028]lf the control function which opens a file in the above-mentioned procedure is acquired, 
the control function which reads a file in the process, the control function written in a file, and 
the control function which closes a file are simultaneously acquirable. Therefore, a control 
function required in order to perform STEP 4, 6, 7, and 8 of drawing 2 is also acquirable by 
acquiring the control function which opens a file. 

[0029]Next, the procedure which acquires the control function required in order to perform 
STEP10 of drawing 2 which deletes a file is explained. Drawing 5 shows the procedure which 
acquires the control function which deletes a file. The fictitious file (here, it is considered as file 
name'X') which gave the suitable name a priori is set to the encryption software 5. First, the 
encryption software 5 accesses the hard disk driver 4 (hard disk 3) via OS and the file system 
1 , specifies the route of a drive, and looks for the element (a file or a folder) in it. And when a 
file does not find one, it is directed to OS that said fictitious file deletes from the hard disk 3. At 
this time, since said fictitious file does not exist in the hard disk 3, it becomes an error and 
processing is ended. However, if processing which deletes a file is performed even once, the 
control function for deleting a file from the file system 1 to the hard disk driver 4 will be sent 
out. This is acquired and held with the encryption software 5. Henceforth, it can direct now 
from the encryption software 5 with a control function to the hard disk driver 4 directly, without 
passing a file system. 

[0030]As a result of specifying the route of said drive and looking for the element (a file or a 
folder) in it, when a folder or a file is found, it directs to consider that the found folder is a file 
and to delete it to OS. Or it directs to consider that the found file is a folder and to delete 
fictitious file'X' in the folder to OS. Although a processing result serves as an error and ends 
processing with any directions, the control function for deleting a file from the file system 1 to 
the hard disk driver 4 similarly will be sent. It becomes possible to acquire a control function 
above required in order to perform STEP1-STEP4 of drawing 2, and STEP 6-10. 
[0031]When a predetermined folder is chosen as an object of user's move origin, the file which 
exists in it, and the file in a subfolder and also the subfolder concerned will also be moved as 
well as said folder as a moved object. In this case, as that example is shown in drawing 6, it is 
common to perform moving processing in the procedure what is called based on the recursive 
technique. Since it always memorizes which file or folder this disposal method moved during 
moving processing, and there is nothing if it is kana ******, a considerable quantity of main 
memory will be consumed. 

[0032]Then, the moving processing method (henceforth the nonreflexive technique) of the 
folder which stopped the amount of consumption of main memory in this invention is proposed. 
The example of composition of a concrete source folder is given to drawing 7, and this is 
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explained to it in detail. In drawing 7 , O seal shows a folder and ** seal shows the file. Now, 
the top folder of a moved material is assumed to be the folder 1 , and the file 1 , the file 2, and 
the subfolder (folders 2 and 5) exist in it. Two or more subfolders and files exist under the 
folder 2, and five folders (the folder 1 - the folder 5) and eight files (files 1-8) exist as a whole. 
[0033]First, it is directed to the hard disk driver 4 that encryption software reads the attribute of 
the top folder (folder 1) of a source folder. And based on the information on said read attribute, 
the duplicate of the folder 1 is created in a movement destination, and it is considered as a 
movement destination folder (movement destination folder 1). If an attribute is furthermore 
given to the movement destination folder 1 (correction of a day entry), it will return to the folder 

1 and the element (a file and the general term of a subfolder are said) of the beginning in the 
folder 1 will be looked for. It is made to move into the movement destination folder 1, although 
the files 1 and 2 and the folders 2 and 5 exist in the folder 1, enciphering or decoding the file 1 
and the file 2 first in the procedure shown in drawing 2 , respectively. It will be deleted from the 
folder 1 which is a source folder by the file 1 and the file 2 which finished moving processing at 
this time. 

[0034]ln this state, one file does not exist directly under the folder 1 , either. Then, it is if a file 
will be in the state where one does not exist. It moves to the folder 2 under it, and the attribute 
is read by making this into a new source folder. Based on the attribute of said read folder 2, the 
duplicate of the folder 2 is similarly created in a movement destination, and it is considered as 
a movement destination folder (movement destination folder 2). If an attribute is furthermore 
given to the movement destination folder 2 (correction of a day entry), it will return to the folder 

2 and the element in the folder 2 will be looked for. Although the files 3 and 4 and the folders 3 
and 4 are found as an element in the folder 2, when a file is found, the file 3 and the file 4 are 
moved into the movement destination folder 2, enciphering or decoding in the procedure 
similarly shown in drawing 2 . It will be deleted from the folder 2 which is a source folder by the 
file 3 and the file 4 which finished moving processing at this time. If a subfolder is found as an 
element in the folder 2 (here, the folders 3 and 4 correspond), next, it will move to a subfolder 
and the same procedure as the following will be repeated. 

[0035]Here, it moves to the folder 3 first and the attribute is read by making this into a new 
move original file. Based on the attribute of said read folder 3, the duplicate of the folder 3 is 
created in a movement destination, and it is considered as a movement destination folder 
(movement destination folder 3). And if an attribute is given to the movement destination folder 

3 (correction of a day entry), it will return to the folder 3 and the element in the folder 3 will be 
looked for. Only the file 5 and the file 6 exist in the folder 3. When a file exists, the file 5 and 
the file 6 are moved to the movement destination folder 3, enciphering or decoding in the 
procedure similarly shown in drawing 2 . The file 5 and the file 6 which finished moving 
processing at this time are in the state where it was deleted from the folder 3 which is a source 
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folder. Since the inside of the after-movement folder 3 will be in the state where nothing exists 
as an element from the inside of the folder 3 about the files 5 and 6, the folder 3 which became 
empty from the moved material is deleted. 

[0036]Next, when the eliminated folder does not correspond to the top folder (folder 1), it once 
returns to the top folder (folder 1), and the above-mentioned procedure is again repeated from 
the top folder 1 . The procedure is explained below. Now, it is in the state where the folder 1 , 
the folder 2, the folder 4, the folder 5, and the files 7 and 8 exist in the moved material. Other 
files and folders are already deleted from the moved material. 

[0037]First, if the element in the folder 1 is looked for, the folder 2 will be found as a subfolder. 
The folder 2 is carried out new move origin, and the attribute of the folder 2 is read. Although 
the duplicate of the folder 2 is created in a movement destination below, since it is already 
ending with creation. The element of the beginning in the folder 2 of a movement destination is 
looked for. Only the folder 4 exists in the folder 2. Then, the processing to look for is ended 
and the folder 4 is carried out new move origin. 

[0038]Next, the attribute of the folder 4 is read, and also the duplicate of the folder 4 is created 
in a movement destination based on the attribute of said read folder 4, and it is considered as 
the movement destination folder 4. And if an attribute is given to the movement destination 
folder 4 (correction of a day entry), it will return to the folder 4 and the element in the folder 4 
will be looked for. Only the files 7 and 8 exist in the folder 4. the procedure similarly shown in 
drawing 2 when a file exists - a code fault - or the file 7 and the file 8 are moved to the 
movement destination folder 4, decoding. The file 7 and the file 8 which finished moving 
processing at this time are in the state where it was deleted from the folder 4 which is a source 
folder. Since the inside of the after-movement folder 4 will be in the state where nothing exists 
as an element from the inside of the folder 4 about the files 7 and 8, the folder 4 which became 
empty from the moved material is deleted. 

[0039]Next, when the eliminated folder does not correspond to the top folder (folder 1), it 
returns to the top folder (folder 1), and the again same procedure is repeated from the top 
folder 1 . The procedure is explained below. 

[0040]Now, it is in the state where the folder 2 and the folder 5 exist in the moved material. 
Other files and folders are already deleted from the moved material. If the procedure is 
followed below, the folder 2 will turn into a source folder, but since the inside of the folder 2 
serves as empty, it is deleted, and it returns with the top folder (folder 1). Next, since the folder 
5 exists as a subfolder in the folder 1 , this serves as a source folder. The duplicate of the folder 
5 is created in a movement destination, and since the inside of the folder 5 is empty, it deletes 
the folder 5 from a moved material. Therefore, all the files and subfolder in the folder 1 of a 
moved material were moved to the movement destination in the procedure explained above. 
The folder 1 of the move origin which is finally the top folder is deleted, and movement is 
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completed. As mentioned above, if the procedure explained using drawing 7 is generalized, it 
will become as the flow chart shown in drawing 8 . 

[0041]Next, the procedure required in order to perform each procedure for the bottom shown in 
drawing 7 and 8 moving a folder which acquires a control function is explained. Drawing 9 
shows the procedure which acquires the control function which looks for the element of the 
beginning of a source folder. It is directed to OS that the encryption software 5 specifies the 
route of a drive and looks for the element (a folder and a file) of the beginning in it. Even if it is 
not found even if an element is found as a result or, as a result of making OS perform the 
above-mentioned processing, the control function for looking for the first element from the file 
system 1 to the hard disk driver 4 is sent out. This is acquired and held with the encryption 
software 5. Henceforth, it can direct now from the encryption software 5 with a control function 
to the hard disk driver 4 directly, without passing the file system 1 . As a result of acquiring the 
control function which looks for said first element, the control function which looks for the 
following element can be obtained. 

[0042]Next, the procedure which acquires the control function which creates or deletes a 
source folder is explained. Drawing 10 shows the procedure which acquires the control 
function which creates or deletes a source folder. The fictitious file (here, it is considered as file 
name'X') which gave the suitable name a priori is set to the encryption software 5. First, the 
encryption software 5 accesses the hard disk driver 4 (hard disk 3) via OS and the file system 
1 , specifies the route of a drive, and looks for the element (a file or a folder) in it. 
[0043]And when neither a file nor a folder is found, it directs to delete said fictitious file'X' from 
the hard disk 3 to OS. When a file or a folder is found, it directs to create the folder of the same 
name as the found file or folder to OS. Since the file or folder of a same name already exists 
as a result, it becomes improper to create a folder under the same name, and processing 
serves as an error and is ended. However, the control function which creates or deletes a 
folder is acquirable by making OS perform the above-mentioned processing. 
[0044]Since it becomes possible for the encryption software 5 to acquire a required control 
function via the file system 1 at the time of starting, and to control the hard disk driver 4 directly 
by the procedure explained above using this, It becomes possible to carry out processing 
which moves a move original file or a folder to a movement destination while performing 
encryption/decoding. And when all the processings were completed, it enabled it to return a 
shift request response to the file system 1 by using a control function for the hard disk driver 4, 
and having made it direct directly from the encryption software 5. Therefore, it becoming 
impossible to access a file, making a mistake in the file under processing, and also making it 
move to somewhere else can be prevented during processing. Therefore, the 3rd person can 
be prevented also from that a user also mistakes with what finished processing thru/or 
acquiring ****** unjustly, even if a user does a leaving chair during processing in spite of being 
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under processing. The 3rd person invades into a user's personal computer via a network, and 
acquiring the file under encryption processing unjustly can also be prevented. As mentioned 
above, this invention is applicable also to a duplicate, although movement of a file etc. was 
explained to the example. 

[0045]Next, when encryption software is started, how to generate key data required for 
encryption or decoding is explained. Drawing 1 1 is a block diagram showing the process in 
which a common encryption key or decode key is generated. If encryption software is started 
as shown in drawing 11 , the display which stimulates the input of ID (identification signal) on a 
monitor first will be made, and a user will input ID from a keyboard according to this. The 
numerals of the predetermined bit which performs a hash function operation based on this, and 
is called a hash value are generated, and also a predetermined encryption key is generated 
based on a hash value. The generated encryption key is saved at a hard disk, and when it 
enciphers or decodes a predetermined electronic file, it is used. 

[0046]However, in this encryption key generation method, since the encryption key is saved at 
the hard disk, the 3rd person invades into a user's computer via a network, and it has the fault 
of being easy to acquire an encryption key from a hard disk unjustly. Then, in order to cancel 
this fault, the generation method of a new encryption key is shown in drawing 12 . In drawing 
12, a user inputs ID from a keyboard according to the display to which the ID input on a 
monitor is urged. A hash function operation is performed based on this, and the hash value 
(message digest) of a predetermined bit is generated. Next, said hash value is divided into 
two, one side is set to hash value A, and another side is set to hash value B. Said hash value 
is divided into multiple-data-stream, two with said arbitrary multiple-data-stream are chosen 
here, and it is good also as said hash value A and hash value B. 

[0047]So, when generate an encryption key based on said hash value A, making this hold only 
to main memory and terminating software, an encryption key is deleted from main memory. On 
the other hand, said hash value B is saved as authentication data at a hard disk. And if the 
authentication data generated when a user inputs ID from a computer next time is compared 
with said saved authentication data and authentication data is in agreement, an encryption key 
will be generated based on said hash value A, and it will enable it to carry out desired 
encryption or decoding. When authentication data is not in agreement, the generated 
encryption key is canceled and it prevents from performing encryption or decoding processing. 
[0048]Since the encryption key generated from hash value A is not saved on a hard disk if it 
does in this way, it becomes impossible for the 3rd person to obtain this unjustly via a network, 
and a user - since only the person himself/herself cannot start encryption software, it becomes 
an effective means, when it also becomes impossible of the 3rd person to decode an 
enciphered file unjustly on a user's computer and he secures security. 
[0049] 
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[Effect of the lnvention]As this invention was explained above, when encryption software 
performs file migration processing accompanied by encryption or decoding conventionally, In 
order to have to control a hard disk driver (hard disk) via OS, A problem when carrying out 
moving processing accompanied by said encryption or decoding after returning the completion 
response of a move which shows that movement of a file was completed to OS, The problem 
which is easy to acquire the generated encryption key from the 3rd person unjustly is solved, 
Have a procedure which acquires the control function with which encryption software controls 
a hard disk driver (hard disk) directly, and perform file migration processing accompanied by 
encryption or decoding using said control function which carried out income, and. It is **** 
about higher efficacy for processing stability supplying movement of the data of encryption 
software with a high security function, a duplicating method and encryption, and a decoding 
method highly, since the generated encryption key is held only on main memory and it was 
made not to save it on a hard disk. 
[0050] 



[Translation done.] 
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* NOTICES * 

JPO and INPIT are not responsible for any 
damages caused by the use of this translation. 

1 This document has been translated by computer. So the translation may not reflect the 
original precisely. 

2.**** shows the word which can not be translated. 
3. In the drawings, any words are not translated. 



DESCRIPTION OF DRAWINGS 

[Brief Description of the Drawings] 

[ Drawing 1] The block diagram showing the composition of the encryption software concerning 
this invention. 

[Drawing 2]The flow chart figure showing file migration processing of the encryption software 
concerning this invention. 

[ Drawing 3] The flow chart figure showing the procedure which acquires the control function in 
which the encryption software concerning this invention carries out attribute read-out and 
attribute grant. 

[Drawing 4] The flow chart figure showing the procedure which acquires the control function 

which opens the file of the encryption software concerning this invention. 

[Drawing 5] The flow chart figure showing the procedure which acquires the control function 

which deletes the file of the encryption software concerning this invention. 

[Drawing 6] The flow chart figure by the recursive technique which showed the folder moving 

processing of the encryption software concerning this invention. 

[Drawing 7] The figure showing an example of the source folder of the encryption software 
concerning this invention. 

[Drawing 8] The flow chart figure by the nonreflexive technique which showed the folder moving 
processing of the encryption software concerning this invention. 

[Drawing 9 ]The flow chart figure showing the procedure which acquires the control function 
which looks for the element of the beginning of the encryption software concerning this 
invention. 

[ Drawing 10] The flow chart figure showing the procedure which acquires the control function 
which creates the folder of the encryption software concerning this invention, and is deleted. 
[Drawing 11] The flow chart figure showing the 1st method of generating the encryption key of 
the encryption software concerning this invention. 
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[Drawing 12]The flow chart figure showing the 2nd method of generating the encryption key of 
the encryption software concerning this invention. 

[Drawing 13]The block diagram showing the composition of the conventional encryption 
software. 

[Drawing 14] The flow chart figure showing file migration processing of the conventional 

encryption software. 

[Description of Notations] 

1 ... File system 

2 ... Operation system 

3 ... Hard disk 

4 ... Hard disk driver 

5 ... Encryption software 



[Translation done.] 
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* NOTICES * 

JPO and INPIT are not responsible for any 
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1. This document has been translated by computer. So the translation may not reflect the 
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2. **** shows the word which can not be translated. 
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DRAWINGS 



Drawing 1] 




2. 



[Drawing 2 ] 
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[Drawing 6] 
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[Drawing 10] 
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[Drawing 12] 
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